Engineer in Cybersecurity

Axpo

Madrid, Spain

Join us to strengthen Axpo’s cyber resilience in a collaborative, learning-oriented environment. If you’re passionate about security and eager to grow, we’d love to hear from you.

What you will do:

Deploy, configure, and maintain security tools (SOAR, Asset Management, SIEM, EDR, Threat Intelligence, phishing simulation, awareness; focus on Azure security stack)
Build and onboard SOAR and asset management automations, integrations, and workflows
Monitor for threats, tune detections to reduce false positives, and conduct proactive threat hunts
Support incident response: detection, analysis, containment, forensics support, reporting, and IR playbook upkeep
Drive vulnerability management: discovery, prioritization, and remediation tracking
Collaborate across IT and business teams; maintain clear documentation and propose continuous improvements

What you bring & who you are:

Experience in security operations (around 3+ years), ideally in enterprise environments
Knowledge of cybersecurity and networking fundamentals; familiarity with Windows/Linux and cloud (preferably Azure)
Hands-on with SIEM/EDR (e.g., Microsoft Sentinel, Defender for Endpoint) and incident response processes
Experience with Asset management tools:
- Asset discovery & inventory
- Integration & API development
- Risk assessment & prioritization
- Experience with discovery tools
Scripting/programming (e.g., Python, Bash, Java) and strong documentation, problem-solving, and teamwork
- Experience with SOAR tools:
- Platform development & maintenance
- Integration & API development
- Tasks & workflows automation
- Hands-on experience with Torq, Cortex XSOAR, Swimlane, or similar platforms
Education: Degree in Computer Science/IT/Cybersecurity or equivalent practical experience; relevant certifications (e.g., Security+, Azure, SOAR) are a plus
Languages: Good English; German or Spanish is an advantage